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THAT WHICH IS CLAIMED IS: 



1. A method for assessing the security 
posture of a network comprising the steps of : 

creating cl system object model database 
representing a network, wherein the system object model 
database supports the information data requirements of 
disparate network vulnerability analysis programs; 

exporting the system object model database of 
disparate network vulnerability/risk 



the network to the 
analysis programs ; 

analyzing 

vulnerability analysis program to produce data results 



from each program; 

correiat i 
vulnerability analy 
security posture of 



further comprising 



the network with each network 



and— - 

:ig the data results of the network 
sis programs to determine the 
the network. 



A method according to Claim 1, and 



the step of importing the system 



object model databajse to the network vulnerability 
analysis programs v 
programming inter fa 



ia an integrated application 
ce . 



A method according to Claim 1, and 



further comprising 



the step of modeling the network as 



a map on a graphical user interface. 

4. A method according to Claim 1, and 
further comprising the step of establishing a class 
hierarchy to definq components of the network 
vulnerability analysis programs that share common data 
and programming tralits. 



5. A method according to Claim 1, and 
further comprising ti^ie step of correlating the { data 
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results of the network vulnerability analysis programs 
using fuzzy logic processing. 



15 



6. A melthod according to Claim 1, and 
further comprising the step of running the network 
vulnerability assessment /risk analysis programs to 
obtain data results pertaining to network system 
details, network topologies, node level vulnerabilities 
and network level vulnerabilities. 

7. A method for assessing the security 



posture of a network 
creating a 



representing a network, wherein the system object model 



database supports th 
network vulnerabilit 
importing 



information data requirements of 
^/risk analysis programs; 
he system object model database of 



the network to the network vulnerability analysis 



programs through fil 



10 respective network vulnerability analysis programs to 



export only the data 
vulnerability analys 

analyzing 
vulnerability analys 



vulnerability analys 
security posture of 



8 . A metl: 
f urther comprising tt 
obj ect model databas 
assessment /risk anal} 



comprising the steps of : 
system object model database 



ers associated with each 



required by a respective network 
s program; and 

he network with each network 
s program to produce data results 
from each program; arid 

correlating the data results of the network 
s programs to determine the 
he network. 



5 application programming interface. 



od according to Claim 7, and 
e step of exporting the system 

to the network vulnerability 
sis programs via an integrated 
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9. A method according to Claim 7, and 
further comprising tihe step of modeling the network as 
a map on a graphical! user interface. 



10. A method according to Claim 7, and 



further comprising t 



le step of establishing a class 
hierarchy to define components of the network 
vulnerability analysis programs that share common data 
5 and programming trails. 



I If. 
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11. A method according to Claim 7, and 
further comprising the step of correlating the data 
results of the network vulnerability analysis programs 
using fuzzy logic processing. 

12. A method according to Claim 7, and 
further comprising the| step of running the network 
vulnerability analysisl programs to obtain data results 
pertaining to network ^ystem details, network 

5 topologies, node level j vulnerabilities and network 
level vulnerabilities , 

13 . A computjer program that resides on a 



medium that can be read 
computer program compri 



by a program, wherein the 
ses instructions to cause a 



computer to create a system object model database 
representing a network, J wherein the system object model 
database supports the information data requirements of 
disparate network vulnerability analysis programs that 
analyze discrete network} portions; 

export the system object model database of 
the network to the network vulnerability analysis 
programs ; 

analyze the network with each network 
vulnerability/risk analysis program to produce data 
results from each progratp; and 



# 
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15 correlate the data results of the network 

vulnerability analysis programs to determine the 
security posture of the network. 



14 . Al computer program according to Claim 
13, and further Comprising instructions - for displaying 
an integrated application programming interface, and 
exporting the system object model database to the 
network vulnerability analysis programs via the 
integrated application programming interface. 



15. A Computer program according to Claim 
13, and further cdmprising instructions for modeling 
the network as a mjpip on a graphical user interface. 
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:omputer program according to Claim 
13, and further conprising instructions for 
establishing a class hierarchy to define components of 
the network vulnerability analysis programs that share 
5 common data and programming traits. 



17. A computer program according to Claim 
13, and further comprising instructions for correlating 
the data results of Ithe network vulnerability analysis 
programs using fuzzyl logic processing. 



18 . A computer program according to Claim 
13, and further comprising instructions for running the 



network vulnerability 
results that pertain 



analysis programs to obtain data 
to network system details, network 
topologies, node levdl vulnerabilities and network 
level vulnerabilities 



19. A computer program that resides on a 
medium that can be read by a program, wherein the 
computer program comprises instructions to cause a 
computer to create a stystem object model database 
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representing a network, wherein the system object model 
database supports tihe information data requirements of 
disparate network vulnerability analysis programs that 
analyze discrete network portions; 

import the system object model database of 
the network to the Aetwork vulnerability analysis 
programs through filters associated with each 
respective network vulnerability analysis program so as 
to export only the dpta required by the respective 
network vulnerability analysis program; 

analyze thk network with each network 
vulnerability analyses program to produce data results 
from each program; ar.d 

correlate the data results of the network 
vulnerability analysis programs to determine the 



security posture of t 



he network, 



exporting the system 
network vulnerability 
integrated applicatio: 



20. A computer program according to Claim 
19, and further comprising instructions for displaying 
an integrated application programming interface, and 

object model database to the 
analysis programs via the 
programming interface . 



21. A computer program-according to Claim 
19, and further comprising instructions for modeling 
the network as a map on a graphical user interface. 



2 2 . A compu 
19, and further compri 
establishing a class h 
the network vulnerabil 
common data and 



programming 



er program according to Claim 
ing instructions for 
erarchy to define components of 
ty analysis' programs that share 
traits . 



23 . A computer program according to Claim 
19, and further comprisling instructions for correlating 
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the data results of the disparate network vulnerability 
analysis programs using fuzzy logic processing. 



10 



15 



24. A\ computer program according to Claim 
19, and further Comprising instructions for running the 
network vulnerability analysis programs to obtain data 
results that pertain to network system details, network 
topologies, node level vulnerabilities and network 
level vulnerabilities 

25. A data processing system for assessing 
the security vulnerability of a network comprising: 

ity of disparate network 
analysis programs used for analyzing 



a plural 
vulnerability/ risk 
a network; 

a system 



object model database that 



represents the network to be analyzed, wherein the 
system object mode;, database supports the information 
data requirements of the network vulnerability/risk 
analysis programs ; 

an applications programming interface for 
exporting the system object model database of the 
network to the network vulnerability/risk analysis 
programs ; and 

a processor for correlating the data results 



obtained from each network vulnerability analysis 
program after analyzing the network to determine the 
security posture of 



the network, 



26. A data processing system according to 
Claim 25, wherein the applications programming 
interface for importing the system object model 
database comprises graphical user interface. 

27. A data processing system according to 
Claim 25, and furthdr comprising a graphical user 
interface that model'p the network as a map. 

\ 
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28. A d^ta processing system according to 
Claim 25, and further comprising a graphical user 
interface for displacing the security posture of the 
network . 
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29. A data processing system according to 
Claim 25, wherein saild database further comprises an 
object oriented class! hierarchy to define components of 
the network vulnerability analysis programs that share 
common data and programming traits. 

30. A data ^processing system according to 
Claim 25, wherein said! processor comprises a fuzzy 
logic processor. I 

31. A data processing system for assessing 
the security vulnerability of a network comprising: 

a plurality ot disparate network 
vulnerability/risk analysis programs used for analyzing 
a network; \ 

a system objedt model database that 
represents the network to be analyzed, wherein the 
system object model database supports the information 
data requirements of each network vulnerability 
analysis program; 

an applications programming interface for 
exporting the system object model database of the 



network to the disparate 
programs ; 

a filter associ 



network vulnerability analysis 



Jated with the applications 

programming interface anc^ each respective network 

i 

vulnerability analysis program for filterxng the system 
object model database an4 exporting only the required 
data requirements to eactj network vulnerability 
analysis program; and j 

a processor fori correlating the data results 
obtained from each network vulnerability analysis 



program after analyz 
security posture of 



ing the network to determine the 
the network. 



32. A data processing system according to 
Claim 31, wherein the applications * programming 
interface for importing the system object model 
database to comprises a graphical user interface. 



33. A djata processing system according to 
Claim 31, and further comprising a graphical user 
interface that models the network as a map. 



34. A fciata processing system according to 
Claim 31, and further comprising a graphical user 
interface for displaying the vulnerability posture of 
the network. / 



35. li data processing system according to 
Claim 31, wherein said database further comprises an 
object oriented.' class hierarchy to define components of 

nerability analysis programs that share 
programming traits . 



the network vul 
common data and 
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A data processing system according to 



Claim 31, wherein said processor comprises a fuzzy 
logic processor. 



